tomoyo linux
play

TOMOYO Linux A Lightweight and Manageable Security System for PC - PowerPoint PPT Presentation

Feb 09, 2023 •165 likes •654 views

CE Linux Forum Worldwide Embedded Linux Conference 2007 April 17-19, 2007 TOMOYO Linux A Lightweight and Manageable Security System for PC and Embedded Linux http://tomoyo.sourceforge.jp/ Toshiharu Harada Tetsuo Handa NTT DATA

  1. CE Linux Forum Worldwide Embedded Linux Conference 2007 April 17-19, 2007 TOMOYO Linux “A Lightweight and Manageable Security System for PC and Embedded Linux” http://tomoyo.sourceforge.jp/ Toshiharu Harada Tetsuo Handa NTT DATA CORPORATION http://www.nttdata.co.jp/en/index.html

  2. Hello, world! Hello, world! • This is the very first presentation abroad for our work, “TOMOYO Linux”. • TOMOYO Linux is a MAC (Mandatory Access Control) implementation for Linux. • TOMOYO Linux consists of a set of patches for kernel 2.4/2.6 and a couple of administrative tools. It has been ported to various distributions. • TOMOYO Linux is available at http://tomoyo.sourceforge.jp/ under the GPL license. • You can browse&search the code at http://tomoyo.sourceforge.jp/cgi-bin/lxr/source 2007-04-18 NTT DATA CORPORATION 2

  3. About NTT DATA About NTT DATA • http://www.nttdata.co.jp/en/index.html • One of the largest SI companies in Japan. – Data • Established: May 23, 1988 • Ordinary Income: 42,016 million yen • Number of Employees: 8,406 • Common Stock: 142,520 million yen • Net Sales: 907,281 million yen • (see http://www.nttdata.co.jp/en/aboutus/a09.html for more detail) • TOMOYO Linux project: – Launched March 2003. – Members: started from 2. currently 5. – Exceptionally small project in the largest company. :-) 2007-04-18 NTT DATA CORPORATION 3

  4. TOMOYO Linux: Background TOMOYO Linux: Background • Originated from NTT DATA CORPORATION R&D. • Project started in March 2003. • First public release in November 2005. • Ported to Debian Sarge/Etch, RedHat Linux 9, Fedora Core 3-6, CentOS 4.4/5, OpenSUSE 10.1/10.2, Asianux 2.0, Ubuntu 6.10/7.04 and more (check the link below). – http://sourceforge.jp/projects/tomoyo/files/ • Suits well to embedded systems. 2007-04-18 NTT DATA CORPORATION 4

  5. Topics Covered in This Session: Topics Covered in This Session: • Overview of TOMOYO Linux and MAC. • What TOMOYO Linux can do/can’t do. • Concepts. • Automatic policy configuring feature. • TOMOYO Linux policy. • How it works. • Short demonstration. • Comparison to other security enhanced OSs. 2007-04-18 NTT DATA CORPORATION 5

  6. Topics NOT Covered in This Session: Topics NOT Covered in This Session: • Whether name-based access control is evil or not. – It’s too technical and complex. – TOMOYO Linux will have a BOF session in the upcoming Ottawa Linux Symposium. Please join and help/save us ! • In-depth demonstration. – Will be shown in the following tutorial session, don’t miss it! Or please consider installing binary package yourself (10 minutes job). • http://tomoyo.sourceforge.jp/en/1.4/install.html 2007-04-18 NTT DATA CORPORATION 6

  7. Part 1 MAC and TOMOYO Linux Overview 2007-04-18 NTT DATA CORPORATION 7

  8. What is “ “MAC MAC” ”? ? What is • “Mandatory Access Control” – No exceptions even for “root” users and no bypass. – Accesses are strictly judged according to the rules (called “policy”). – Traditional access control is referred as DAC (Discretionary Access Control). • Implementation. – (1) “Hook” a request (e.g. system call). – (2) “Judge” whether to execute the request or not. – (3) “Process” the request. – 2.6 kernel has a built-in framework for hooks – LSM (Linux Security Modules). 2007-04-18 NTT DATA CORPORATION 8

  9. What is “ “hook hook” ”? ? What is application system call interface DAC (traditional access control) system call procedures kernel 2007-04-18 NTT DATA CORPORATION 9

  10. What is “ “hook hook” ”? ? What is application system call interface DAC (traditional access control) MAC “policy” hook system call procedures kernel 2007-04-18 NTT DATA CORPORATION 10

  11. What is “ “policy policy” ”? ? What is • DAC checks “rwx” attributes associated with filesystem. (very simple) • MAC engine needs “rules” to make decision. • “Policy” is the name for the rules . – MAC is useless without good policy. • No standard policy syntax exists (so far). • Policy is defined as a set of “conditions”. – if (condition) then Access is (granted/denied). 2007-04-18 NTT DATA CORPORATION 11

  12. What is TOMOYO Linux? What is TOMOYO Linux? • “Lightweight” and “usable” Mandatory Access Control for Linux, with – “automatic policy configuring” feature. – administrators friendly policy language. – English documentation. – 2.4 kernel and BusyBox support. – no filesystem limitations (runs with any filesystem). – no need of libselinux nor userland program modifications. 2007-04-18 NTT DATA CORPORATION 12

  13. What is TOMOYO Linux? What is TOMOYO Linux? • TOMOYO Linux – is not using LSM (Linux Security Modules) . • Some work is in progress. – does not have MLS (Multi Level Security), RBAC (Role Based Access Control) mechanisms.. • If you need MLS, use SELinux. • RBAC like usages are available. – is not included in Linux kernel source. • yet – can do unusual things and playing with TOMOYO Linux is so much fun. – is no guarantee. (use at your own risk, of course) 2007-04-18 NTT DATA CORPORATION 13

  14. What is “ “domain domain” ”? ? What is domain A • Whether a request domain B is legal or not domain C depends on the domain D “context”. • Most MAC system d o m refers this context a i n as “domain”. E /etc/shadow can be read • “Domain” is a kind of group/unit. if … NTT DATA CORPORATION 2007-04-18 NTT DATA CORPORATION 14

  15. TOMOYO Linux Policy TOMOYO Linux Policy • Exceptionally simple. Any Linux/UNIX users can read and write it. <kernel> /usr/sbin/sshd /bin/bash /bin/csh is the current “domain” 1 /bin/grep 1 /bin/sed /bin/csh process 4 /dev/null that was invoked from /bin/bash 4 /etc/csh.cshrc that was invoked from /usr/bin/sshd mode path 4 /etc/group 4 /etc/nsswitch.conf “<kernel>” is the virtual bottom mode: ・・・ 1 --x 1 /usr/bin/[ 2 –w- 1 /usr/bin/dircolors 4 r— 1 /usr/bin/id 6 rw- 1 /usr/bin/test 2007-04-18 NTT DATA CORPORATION 15

  16. SELinux Policy SELinux Policy From Japan Technical Jamboree 12. “*.te”: access control definitions for “*”. “*.fc”: label definitions for “bind”. “fc” stands for “file context”. Policy is described in terms of label, not path name. (but label definition is described in terms of path names). Macros are introduced to make policy more readable. SELinux kernel needs policy to be compiled before use. 2007-04-18 NTT DATA CORPORATION 16

  17. AppArmor Policy AppArmor Policy From Japan Technical Jamboree 12. • Above definition is applied to every instance of /usr/sbin/named (No process invocation history mechanism exists with AppArmor). • In TOMOYO Linux, “<kernel> /foo /bar /usr/sbin/named” and “<kernel> /boo /bar /baz /usr/sbin/named” is distinguished and treated independently. • SELinux simply cares about “label”. 2007-04-18 NTT DATA CORPORATION 17

  18. AppArmor Policy (cont.) AppArmor Policy (cont.) • Similarities with TOMOYO Linux: – Both use “pathname based” definition. • Differences: – TOMOYO Linux distinguishes domain by a process invocation history while AppArmor does by a single process. – TOMOYO Linux provides MAC for network and signals. 2007-04-18 NTT DATA CORPORATION 18

  19. Domains in TOMOYO Linux Domains in TOMOYO Linux • In TOMOYO Linux – every process belongs to a domain. – every process remembers its ancestors. – ACL are controlled by the domain, not by a current process name. • Utility program, “ccstree”, prints out domain information for running processes. 0 +- sshd (2859) <kernel> /usr/sbin/sshd 0 +- sshd (3807) <kernel> /usr/sbin/sshd 1 +- bash (3809) <kernel> /usr/sbin/sshd /bin/bash 2 +- ccstree (3942) <kernel> /usr/sbin/sshd /bin/bash /root/ccstools/ccstree 2007-04-18 NTT DATA CORPORATION 19

  20. TOMOYO Keeps Track of Process TOMOYO Keeps Track of Process Invocation History Invocation History <kernel> /sbin/mingetty /bin/login /bin/bash /bin/ls <kernel> /sbin/mingetty /bin/login /bin/bash <kernel> /sbin/mingetty /bin/login <kernel> /sbin/mingetty 2007-04-18 NTT DATA CORPORATION 20

  21. A Slightly Complicated Example A Slightly Complicated Example Suppose that you are logged-in into a ssh server and execute a man command: <kernel> /usr/sbin/sshd /bin/bash /usr/bin/man /bin/sh = current domain 1 2 3 4 1 /bin/gunzip 2 /dev/null 6 /dev/tty 4 /etc/mtab 1 /usr/bin/bzip2 1 /usr/bin/gtbl 1 /usr/bin/less 1 /usr/bin/nroff 2 /var/cache/man/cat1/pstree.1.bz2 allow_truncate /var/cache/man/cat1/pstree.1.bz2 2007-04-18 NTT DATA CORPORATION 21

  22. Automatic Policy Generation Automatic Policy Generation • How to use: 1. Change “mode (explained later)” of TOMOYO Linux kernel to “policy generation”. 2. Just operate as you want. 3. TOMOYO Linux generates the required access control lists as policy. 4. Check it and modify it. 5. Done • Advantages – Saves time enormously. – The resulting policy is quite “readable”. 2007-04-18 NTT DATA CORPORATION 22

  23. 23 NTT DATA CORPORATION Demo Demo 2007-04-18

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

TOMOYO Linux News! A Lightweight and Manageable Security System for PC and Embedded Linux

TOMOYO Linux News! A Lightweight and Manageable Security System for PC and Embedded Linux

TOMOYO Linux News! A Lightweight and Manageable Security System for PC and Embedded Linux PDF version of ELC2007 slide is available: CE Linux Forum Wiki TomoyoLinux http://tree.celinuxforum.org/CelfPubWiki/TomoyoLinux (bookmark and

890 views • 48 slides
Linux Kung Fu Introduction What is Linux? Why Linux? What is the difference between a client

Linux Kung Fu Introduction What is Linux? Why Linux? What is the difference between a client

Linux Kung Fu Introduction What is Linux? Why Linux? What is the difference between a client and a server? What is Linux? Linux generally refers to a group of Unix-like free and open-source operating system distributions that use the Linux

562 views • 53 slides
Linux from Sensors to Servers ! When is Linux Not Linux? ! 1 1 Linux runs across a huge range

Linux from Sensors to Servers ! When is Linux Not Linux? ! 1 1 Linux runs across a huge range

Linux from Sensors to Servers ! When is Linux Not Linux? ! 1 1 Linux runs across a huge range of systems ! CC BY-SA 2.0 FHKE, Flickr 2 Whats the difference between Linux on a big thing and Linux on a little thing? ! 3 ! Whats the

900 views • 52 slides
Computing using Linux: The Good and the Bad Christoph Lameter HPC and Linux Most of the

Computing using Linux: The Good and the Bad Christoph Lameter HPC and Linux Most of the

High Performance Computing using Linux: The Good and the Bad Christoph Lameter HPC and Linux Most of the supercomputers today run Linux. All of the computational clusters in corporations that I know of run Linux. Support for

419 views • 12 slides
Linux Overview Amir Hossein Payberah payberah@gmail.com 1 Agenda Linux Overview Linux

Linux Overview Amir Hossein Payberah payberah@gmail.com 1 Agenda Linux Overview Linux

Linux Overview Amir Hossein Payberah payberah@gmail.com 1 Agenda Linux Overview Linux Distributions Linux vs Windows Linux Architecture Linux Security 2 What is Linux? Similar Operating System To Microsoft Windows, Sun

1.11k views • 55 slides
Interviews with Different Users About Their Linux Setups Steven Ovadia My Linux Rig

Interviews with Different Users About Their Linux Setups Steven Ovadia My Linux Rig

The State of Desktop Linux: Interviews with Different Users About Their Linux Setups Steven Ovadia My Linux Rig www.mylinuxrig.com @steven_ovadia *** Associate Professor/Web Services Librarian LaGuardia Community College About My Linux

458 views • 27 slides
Introduction to Linux Fundamentals of Computer Science Outline Operating Systems Linux

Introduction to Linux Fundamentals of Computer Science Outline Operating Systems Linux

Introduction to Linux Fundamentals of Computer Science Outline Operating Systems Linux History Linux Architecture Logging in to Linux Command Format Linux Filesystem Directory and File Commands Wildcard Characters

686 views • 19 slides
Introduction to Linux Aline Abler Aline Abler Linux, whats that? The pieces of a Linux

Introduction to Linux Aline Abler Aline Abler Linux, whats that? The pieces of a Linux

Linux, whats that? The pieces of a Linux system Linux Concepts Distributions Desktop environments Switching to Linux Epilogue Introduction to Linux Aline Abler Aline Abler Linux, whats that? The pieces of a Linux system Linux

766 views • 57 slides
GNU/Linux Why use it? What is Linux? Linux is a UNIX-like, GPL-licensed open-source kernel. The

GNU/Linux Why use it? What is Linux? Linux is a UNIX-like, GPL-licensed open-source kernel. The

GNU/Linux Why use it? What is Linux? Linux is a UNIX-like, GPL-licensed open-source kernel. The GNU userland consists of libc, the init system (SystemD) X11 GUI toolkits etc. Ask the audience Who has used

442 views • 22 slides
Linux You Can Drive My Car Embedded Linux Conference

Linux You Can Drive My Car Embedded Linux Conference

Linux You Can Drive My Car Embedded Linux Conference 2017 Walt Miner ( @VStarWalt ) Community Manager, AGL , The Linux FoundaGon

721 views • 55 slides
Linux For Beginners April 26, 2016 Dualboot Linux and Windows Dualboot Linux and Windows

Linux For Beginners April 26, 2016 Dualboot Linux and Windows Dualboot Linux and Windows

Linux For Beginners April 26, 2016 Dualboot Linux and Windows Dualboot Linux and Windows Reinstall usually keeps personal files Advantages of Linux More secure Package manager Software installation is easy, fast and secure Keeps

528 views • 15 slides
Linux Kung Fu Stephen James UBNetDef, Spring 2017 Introduction What is Linux? What is the

Linux Kung Fu Stephen James UBNetDef, Spring 2017 Introduction What is Linux? What is the

Linux Kung Fu Stephen James UBNetDef, Spring 2017 Introduction What is Linux? What is the difference between a client and a server? What is Linux? Linux generally refers to a group of Unix-like free and open-source operating system

607 views • 48 slides
AOS Linux Tutorial Introduction to Linux Michael Havas Dept. of Atmospheric and Oceanic Sciences

AOS Linux Tutorial Introduction to Linux Michael Havas Dept. of Atmospheric and Oceanic Sciences

AOS Linux Tutorial Introduction to Linux Michael Havas Dept. of Atmospheric and Oceanic Sciences McGill University September 15, 2011 Outline 1 Introduction to Linux Benefits of Linux What Exactly is Linux? The Free-Software Philosophy 2

898 views • 69 slides
The State of the Linux Desktop An OSDL Perspective John Cherry OSDL Desktop Linux (DTL)

The State of the Linux Desktop An OSDL Perspective John Cherry OSDL Desktop Linux (DTL)

The State of the Linux Desktop An OSDL Perspective John Cherry OSDL Desktop Linux (DTL) September 23, 2006 1 2 The State of the Linux Desktop Riding the Open Software Wave The Linux Desktop Markets Linux Desktop Market Data The Linux

543 views • 40 slides
Linux Basics 2 Pre-Lab Everyone installed Linux on their

Linux Basics 2 Pre-Lab Everyone installed Linux on their

Computer Systems and Networks ECPE 170 Jeff Shafer University of the Pacific Linux Basics 2 Pre-Lab Everyone installed Linux on

617 views • 25 slides
Power Your Car with Automo0ve Grade Linux Automo&amp;ve Linux

Power Your Car with Automo0ve Grade Linux Automo&amp;ve Linux

Power Your Car with Automo0ve Grade Linux Automo&amp;ve Linux Summit 2017 Walt Miner ( @VStarWalt ) Community Manager, AGL , The Linux

594 views • 37 slides
Git, a distributed revision control system Thomas Petazzoni Free Electrons

Git, a distributed revision control system Thomas Petazzoni Free Electrons

Git, a distributed revision control system Git, a distributed revision control system Thomas Petazzoni Free Electrons thomas.petazzoni@free- electrons.com Free Electrons. Kernel, drivers and embedded Linux development, consulting, training

1.06k views • 104 slides
Object-Oriented Programming: Why You're Doing It Wrong Toby Inkster Three weird tricks to make

Object-Oriented Programming: Why You're Doing It Wrong Toby Inkster Three weird tricks to make

Object-Oriented Programming: Why You're Doing It Wrong Toby Inkster Three weird tricks to make your object-oriented code more encapsulated, more reusable, and more maintainable. Toby Inkster (TOBYINK) Type::Tiny MooX::late Moops /

540 views • 37 slides
Game Changers Dhanfu E. Elston, Ph.D., Vice President (dah-nee-foo) 1 Overview I. Introduction

Game Changers Dhanfu E. Elston, Ph.D., Vice President (dah-nee-foo) 1 Overview I. Introduction

Game Changers Dhanfu E. Elston, Ph.D., Vice President (dah-nee-foo) 1 Overview I. Introduction II. About CCA III. Game Changers 2 35 Members Arkansas Commonwealth Colorado of the Northern Connecticut Mariana District of

575 views • 42 slides
Unit Tests: Using PHPUnit to Test Your Code With Your Host Juan Treminio http://jtreminio.com

Unit Tests: Using PHPUnit to Test Your Code With Your Host Juan Treminio http://jtreminio.com

Unit Tests: Using PHPUnit to Test Your Code With Your Host Juan Treminio http://jtreminio.com http://github.com/jtreminio @juantreminio #phpc I love writing tests I like to work from home I sometimes write things for my

718 views • 45 slides
Directing JavaScript with Arrows Khoo Yit Phang , Michael Hicks, Jeffrey S. Foster, Vibha

Directing JavaScript with Arrows Khoo Yit Phang , Michael Hicks, Jeffrey S. Foster, Vibha

Directing JavaScript with Arrows Khoo Yit Phang , Michael Hicks, Jeffrey S. Foster, Vibha Sazawal University of Maryland October 26, 2009 1 JavaScript: de-facto language for Web 2.0 JavaScript increasingly used to write sophisticated,

1.14k views • 82 slides
Economic Data Lit iteracy Edi Tebaldi, Ph.D. Professor of Economics, Bryant University

Economic Data Lit iteracy Edi Tebaldi, Ph.D. Professor of Economics, Bryant University

Economic Data Lit iteracy Edi Tebaldi, Ph.D. Professor of Economics, Bryant University Hassenfeld Institute for Public Leadership Practical men, who believe themselves to be quite exempt from any intellectual influence, are usually the

416 views • 37 slides
PMIS: Why do we continue making the same mistakes with PMIS By: Dina Keirouz, PMA Consultants

PMIS: Why do we continue making the same mistakes with PMIS By: Dina Keirouz, PMA Consultants

PMIS: Why do we continue making the same mistakes with PMIS By: Dina Keirouz, PMA Consultants February 27 - March 1, 2020 | Renaissance Indian Wells Resort &amp; Spa The lay of the land 1. How many attendees have implemented or will be

608 views • 40 slides
Lab #10: Demonstration of AdaBoost CS109A Introduction to Data Science Pavlos Protopapas, Kevin

Lab #10: Demonstration of AdaBoost CS109A Introduction to Data Science Pavlos Protopapas, Kevin

Lab #10: Demonstration of AdaBoost CS109A Introduction to Data Science Pavlos Protopapas, Kevin Rader, and Chris Tanner 1 Our Data Training Data Chest Blocked Patient Heart Pain Arteries Weight Disease Yes Yes 205 Yes No Yes 180

518 views • 34 slides

More recommend